[owasp-antisamy] Contribution Idea for AntiSamy API

Jason Li jason.li at owasp.org
Sat Jan 28 16:54:57 UTC 2012


It is already possible to check against a whitelist insofar as specific HTML tags and attribute values can be explicitly added to the policy file?

Can you explain your idea further? Note that AntiSamy is an HTML validator, not a generic input validator.


On Jan 28, 2012, at 3:43 AM, "Dominique RIGHETTO" <dominique.righetto at gmail.com> wrote:

> Hello,
> First i would like to wish you an happy new year.
> Using AntiSamy, i have had an idea for a contribution (that I can implements if you agree with my proposition) : Is it possible to add a feature in AntiSamy in order to check if a user input is valid or not according to white list (character  + encoding + repetition) ….
> What do you think of this idea ?
> Thanks in advance for your response
> Cordialement, Best regards, 
> Dominique Righetto
> dominique.righetto at gmail.com
> dominique.righetto at owasp.org 
> MSN: drighetto at hotmail.com
> Skype: righettod
> GSM: +352.621.510.605
> Google Code Repository
> "No trees were killed to send this message, but a large number of electrons were terribly inconvenienced."
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.owasp.org/pipermail/owasp-antisamy/attachments/20120128/341869c7/attachment.html>

More information about the Owasp-antisamy mailing list